Skip to comments.Hacking Forensic Investigator: Lerner's Emails Are Retrievable
Posted on 06/23/2014 3:54:23 PM PDT by bkopto
Vinnie Troia, the CEO of Night Lion Security and a computer hacking forensic investigator stated that even though the IRS cancelled its contract with e-mail backup service, the agencys e-mails are still stored off-site and should be retrievable.
Troia pointed out that even according to the 2012 and 2013 audits which were performed on the IRS systems, they were shown to have back-ups that were fully functional, back-ups that were offsite and tested to be properly off-site, adding those back-ups do exist somewhere. It is just a matter of finding them and going after them.
He also reported that the 2013 audit of the IRS computer services showed that the IRS is ignoring really basic fundamental security procedures like even updating their systems.
(Excerpt) Read more at breitbart.com ...
That’s more like it, someone who actually knows what they’re doing.
Cue the crickets at washingtoncompost.com
those back-ups do exist somewhere”
Unless Barry gets to them first.
” Thats more like it, someone who actually knows what theyre doing. “
did you ntice these people are not from the administration...that’s why they know what they’re doing!
Lerner belongs on a pike with barbs. Here’s what actually happened.
SHE destroyed her hard drive in coordination with other top officials
Those hard drives were recycled to leave no trace
With this in mind, why has there been not a single arrest!
Vinnie, we’d like you to bring in your last 20 years of receipts please and a statement from you denying you have ever met a conservative
Issa? Republicans? Beuller? Beuller?
Hopefully it was the tech people that put together healthcare.gov that’s tried to hide the emails. That would make them easy to find.
If you were part of this criminal DOJ would you arrest yourself?
We have all known this was a lie from day 1. We have all known if any of us tried to pull this excuse when accused of insider trading, or covering up some other liability -- we'd be arrested.
I am not saying that these people need to be in jail because I take any particular pleasure in someone else's misery -- it is just that we need to be a nation of laws or we become a nation of outlaws. These government bureaucrats are casting themselves as untouchable royalty -- and our royal representatives don't care (because they are above the law too), and the Media enables these actions because the crimes were committed by their political and spiritual brethren.
Without a specific Email address to track it is all lost in the noise.
Taking the 5th and trashing her hard drive hides the Email address she was using. Specifically it hides the connection between her and the Email account wherever it was.
So to me, the key is finding out what the Email address is and therefore where it was hosted. If it can be found, the Email can be retrieved.
Finding it I believe is possible based on the IP address of her computer/office. With that IP address the hosting companies can be searched for whatever accounts are associated with it.
And then all will be exposed.
I’ve been saying this for a while, there has to be a backup somewhere.
They’ve stated that the employees had a storage limit on their mailboxes, and after that limit was reached, employees would have to archive their messages on their personal machines, which is how the emails got lost. However, in an Exchange database, you would still be able to retrieve all of those messages, even if they got transferred out of the system to a workstation.
You see, in Exchange, the mail database must be backed up regularly, and until all the messages are backed up, Exchange keeps transaction logs from which all the un-backed up messages can be reconstructed. If your backup isn’t working, the logs pile up, and are not deleted until the next backup is complete. A smaller company might overwrite backup tapes and lose messages eventually, but the government does offsite backups so there is a copy of the messages somewhere.
I agree. The emails exist someplace. If they did use third party accounts, those will also be found, but probably only by a truly independent prosecutor with a huge staff.
From an earlier thread:
I am an I.T. professional and have been for 30 years. I will GUARANTEE those emails are recoverable.
The IRS uses what is called an Exchange server. EVERYTHING that uses Outlook is stored in an .OST file on a SERVER. In the case of the IRS it is almost with certainty that server is located within a data center. That server and probably hundreds of others are backed up with multiple backups AND in other locations.
If the hard drive in a users PC crashes, burns, stolen or whatever, you simply plug in a new one, reconfigure Outlook to grab the .OST file from the server and magically all of your email, folders, contact list, calendar, etc,etc,etc, come back to life on the PC.
Now, these servers are configured with RAID drives that mirror each other. If one goes bad the others keep running. All you do is plug in a new drive and it mirrors again. Plus the servers are mirrored as well. Its called FAULT TOLERANT.
Even if somebody destroyed the actual .OST files and the backups from the servers. The RECIPIENTS still have those emails and...they are on servers as well.
I would have EVERY computer, tablet, smart phone and any other devices seized from Lerner and EVERYBODY in her contact list as a start. Then I would seize the servers and subpoena EVERY person involved in the administration of those servers. Answers would come swiftly if facing jail time.
The IRS is a criminal organization so you have to think like a criminal. Thing is, they always screw up somewhere.
Paging Mr. Snowden...
...none of which prevents a user from DELETING a message from their mailbox.
It may take a while to percolate through all of the various redundancies, but eventually it WILL be irrecoverable, unless there happens to be a backup set from the time in question, or if the messages were also dumped into an archive someplace.
Everyone please repeat after me:
RAID is NOT backup.
Backup is NOT archiving.
Backups will eventually be overwritten, unless there is a specific policy in place to preserve them for archival purposes. Otherwise you need to be creating a separate archive and preserving that someplace.
Because the Pubbies have no heart, or maybe it would be more accurate to say, they have no stones.
A RAID drive isn’t a backup, but an appropriately configured RAID will prevent data loss should a single drive go bad.
I cannot imagine storing emails and other important data on anything less than a RAID - the exception being my WayBackMachine for my MAC, but then again I also have off-site storage
Just require them to supply the crashed hard drive itself. The data is still there, and fully recoverable, unless they have taken extraordinary measures. Which, if so, indicates criminal intent to destroy evidence. Either way, get the crashed drives.
They are with the real birth cert. never to be found.
Ahh, nevermind. They got rid of the evidence.
“The damaged hard drive containing ex-IRS official Lois Lerner’s missing emails was disposed of more than two years ago, the agency confessed on Wednesday.” — http://www.dailymail.co.uk/news/article-2662577/The-IRS-THREW-AWAY-Lois-Lerners-hard-drive-containing-incriminating-emails.html
Whoever received IRS Emails will also have records on their Microsoft Exchange Servers, in Outlook, etc. It is too convenient to just say the IRS lost them; actually, anyone whom Lois Learner communicated would also be bound by the same laws to maintain these records. Therefore, there may be twice or more the volume of backups.
Wouldn’t bother tape or disk or optical media — might harm the I/O devices including ICs on the disk drives.
The House needs to start using it’s power to hold people in contempt and make the sgt at arms perform his duties and put people in jail.
And if we’re going to imagine, just imagine the House taking the IRS out of obamacare enforcement.
There's where you break down. It will never happen while Holder is AG and they all know it.
If the GOP are really serious their first move should be to stop waiting for the zero chance that Holder's Justice Department will do anything beyond throwing parties for anyone the House holds in Contempt and to exert their only real threat. The House can on its own authority imprison those it holds in Contempt. It can and should start with Holder and should throw Lerner in right after him. I don't recall anyone else being held in Contempt by this House, but if they're are, throw them in too. Obama has no power to pardon them out of there, and precedent says the Judicial system also has minimal jurisdiction. Judicial prison standards also don't apply so they don't have to be kept under Club Fed standards. I'd advise subcontracting with Sheriff Joe to 'House' them once Obama predictably forbids any executive branch run institutions from doing so. They can hold them until the end of this Congress at which time the next House can repeat it. THEN ask the little people whether they think Pelosi will take back the Speakership and come to their rescue or whether they want to tell all the truth.
Admittedly the chances of this happening under Speaker Boehner is similar to the chances of Majority Leader Cantor losing his primary. But a Tea Party rip tide in November might bring in bolder leadership.
They’re gone, Jim. The primary RAID arrays on all of the MS Exchange servers, every individual email account that receive and stored those mails locally, every local archive created by every user that received them, every offsite storage server and attached storage, every paper backup copy...they are all gone.
They stonewalled it so long to ensure that every trace is gone. And they put every single person who received those mails under NDA and subtle threat of death.
It’ll take a whistle blower extraordinaire willing to forego pension and be under constant attack for decades to bring anything to the light of day.
There is a million dollar reward offered by True The Vote for information
from whistle blower!!! Invested the right way this might be enough for someone to come forward!!!!
If they were using free email accounts, then the emails could have never been sent. A popular form of email communication among bad guys is to share an email login with other conspirators. Then, an email is composed, but never sent out. It is saved as a draft. Accomplices can login, read the draft to obtain instructions, and leave it parked as a draft for others to review.
Yes but RAID only lets you recover from a drive failure in the moment. It’s of little use when you’re trying to restore data that was deleted or destroyed two years ago.
Interesting. I would think even those messages end up being backup up on the server but in that case that is the only place it would exist and would never be intercepted through normal means.
Were they that sophisticated?
That’s assuming they used their government Email accounts to send these messages.
The big picture lost in all of this scandal is that emails reside on SEVERAL servers (there are backup servers PLUS there are each of the RECIPIENTS’ servers as well...)
I think they were knowledgeable about how other enemies of America communicate and could have adopted the practice. That way they could have party influence and direction without a compromising trail. An important question to ask is not, “did you send email,” but, “did you compose email?”
bump to the top
RAIDS can be self-repairing. Take out the bad disk, insert a blank one, and it will repopulate the blank disk using redundantly stored data